My Forum Exploit!! (I coded a tool)

See that login prompt? that is an example of what this software can do (please don't bann me I just used that as an example)...,

This exploit is something I discovered whilst trying to find certain vulnerabillities on forums, the way this works is via the http access manipulation, URL encoding and injection.

So what does it do?

This tool uses a weakness in almost all forums, that is, the way BBCode is used, the way it handles file extensions, and the way they don't use propper input checking bounds which ultimately is one big flaw, now for example, you can use this tool for two reasons, one of which is to be destructive, flood forums with pop-ups, use your actual target do DDoS another target to get thousands of people to attempt to login, causing a major DoS etc, or the better option is, you can use this tool as a great way for phishing, stealing login information and sending it back to yourself, you would need some scripting knowledge to do this but nothing too difficult.., in-fact there is a lot more that can be done with this, it just takes a little imagination, though it comes with a lot of help if you're struggling.